The host is installed with Microsoft Excel 2003 SP3, 2007 SP2 or SP3, 2010 SP1 or Office Compatibility Pack SP2 or SP3 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle memory when opening specially crafted Excel files. Successful exploitation allows attackers to run arbitrary code.